BPEL process web service security issue

Hi guys,
I could use a web service based on BPEL process from local machine, but when I am calling the same service from one of the client machines i get following type of error
WARNING: Unable to connect to URL: http://server1:7777/orabpel/default/SendTransfer/1.0 due to java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: server1:
23:14:16 HTTP transport error: javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed
any help is appreciated

In your service url http://server1:7777/orabpel/default/SendTransfer/1.0 , the "server1" should be a proper IP address recognized over your network. Otherwise you can add this name with corresponding IP address in hosts file entry.
--Shiv                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

Similar Messages

  • "Define Web Service" - Security Issues

    Hello all,
    I have successfully defined a Web service with the wizard in ID. So I already have my WSDL file.
    Now, I need to use this WSDL file from a Web Application that exposed to all public internet. 
    Now my question is, how is security managed for this web service? I mean, if the web service is exposed to any user of the web application in the internet, how can I assure that, the information in the WSDL file will not be used to access the XI Server with out authorization?
    Who should be in charge of the security, the web application? the web service? or xi?
    Thanks,
    Felipe

    If you are using the SOAP Adapter for receiving the information it provides the features like
    1. HTTP without Client Authentication
    2. HTTP with Client Authentication
    Even you can select Security Prameters like
    1. Web Service Security
    2. S/MIME
    If you configure all this then which other kind of security you are looking for.
    Gaurav Jain
    Reward Point if answer is helpful

  • BPEL process Web Service Authentication

    Hi guys,
    I could use a web service based on BPEL process from local machine, but when I am calling the same service from one of the client machines i get following type of error
    WARNING: Unable to connect to URL: http://server1:7777/orabpel/default/SendTransfer/1.0 due to java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: server1:
    23:14:16 HTTP transport error: javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed
    any help is appreciated

    Hi,
    you may also want to post this question to the BPEL forum
    BPEL
    Frank

  • Secured Web Service - security issue

    Hi,
    I have successfuly created Web Services Data Control, with authentication - userid/password (WSDL uses https).
    I have created a simple page with Search form and ADF read-only table for results.
    I'm getting following error when starting the page / executing the search:
    <Utils> <buildFacesMessage> ADF: Adding the following JSF error message: Client hat SOAP-Fehler vom Server erhalten: Error on verifying message against security policy Error code:1000
    oracle.j2ee.ws.client.jaxws.JRFSOAPFaultException: Client hat SOAP-Fehler vom Server erhalten: Error on verifying message against security policy Error code:1000
    =====
    How can I verify content in <soapenv:Header><wsse:Security ........> tags in the message sent to SOAP server? Is there a way how can I configure generated Header (e.g. Password Type, or xmlns:wsu ... )?
    Thanks a lot for support,
    DanielF
    Edit: It seems, that Header is not composed properly (Security Subject: anonymous):
    Target URL -- http://localhost:7101/FSS_Demo-ViewController-context-root/faces/WebServices2.jspx
    <JAXWSMessageLogger> <errorLogException> Error while invoking endpoint "https://172.22.30.12:8114/DV900/AddressBookManager" from client; Security Subject: anonymous
    <WebServiceConnectionMessages> <debugExecuteFailure> Failed to execute a SAAJ interaction.
    oracle.j2ee.ws.client.jaxws.JRFSOAPFaultException: Client hat SOAP-Fehler vom Server erhalten: Error on verifying message against security policy Error code:1000
    How can I control the Header composition?

    Dimitar,
    thanks a lot for response, this is something new for me.
    When I edit Data Control Policies, JDeveloper throws following error:
    Mar 13, 2012 5:43:23 PM oracle.j2ee.util.AnnotatedLogger logWithThrowable
    SEVERE: The policy manager repository path "C:\Dokumente%20und%20Einstellungen\fasda\Anwendungsdaten\JDeveloper\system11.1.1.6.38.61.92\DefaultDomain\oracle\store\gmds" does not contain any valid directories.
    java.lang.IllegalArgumentException: WSM-04694 : An invalid directory was provided to connect to a file-base MDS repository.
    When I ignore this error, "Edit Data Control Policies" window is displayed. There are no selected policies in the Security Tab.
    ====
    Edited by: DanielF on 13.03.2012 09:51
    Web service expects header in following format:
    <soapenv:Header>
    <wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
    <wsse:UsernameToken wsu:Id="UsernameToken-1" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
    <wsse:Username>username</wsse:Username>
    <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password>
    </wsse:UsernameToken>
    </wsse:Security>
    How shall I set up the Control Policies?
    Thanks a lof for support,
    Daniel

  • Web Service Security issue. need advice!!!

    I intend to create a webservice which provides a service for updating a clients data at a remote location. In other words, this service will update values stored in the database. Other than making sure that a user may not access others' data, are there any security concerns i should be wary of by allowing a web service to interact with a database?(although it will have to use the systems database handler class to do so)
    I intend to secure the connection and also implement a verification method of the user.
    -Thomas

    Dimitar,
    thanks a lot for response, this is something new for me.
    When I edit Data Control Policies, JDeveloper throws following error:
    Mar 13, 2012 5:43:23 PM oracle.j2ee.util.AnnotatedLogger logWithThrowable
    SEVERE: The policy manager repository path "C:\Dokumente%20und%20Einstellungen\fasda\Anwendungsdaten\JDeveloper\system11.1.1.6.38.61.92\DefaultDomain\oracle\store\gmds" does not contain any valid directories.
    java.lang.IllegalArgumentException: WSM-04694 : An invalid directory was provided to connect to a file-base MDS repository.
    When I ignore this error, "Edit Data Control Policies" window is displayed. There are no selected policies in the Security Tab.
    ====
    Edited by: DanielF on 13.03.2012 09:51
    Web service expects header in following format:
    <soapenv:Header>
    <wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
    <wsse:UsernameToken wsu:Id="UsernameToken-1" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
    <wsse:Username>username</wsse:Username>
    <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password>
    </wsse:UsernameToken>
    </wsse:Security>
    How shall I set up the Control Policies?
    Thanks a lof for support,
    Daniel

  • Accessing BPEL processes via a proxy web service performance issues

    Hello,
    I have more BPEL processes implemented, each such a process implementing business functionality in a certain domain (generally, a domain has more business processes).
    The request was to provide a single web service for each domain. It means that all the business methods (processes) in the same domain should be accessed through the same web service. This request doesn't make possible to expose the BPEL processes themselves as web services that could be directly consumed by different clients of the application.
    The alternative will be to implement the "domain" web services through a Java class, for instance. With this approach, the Java based domain web services will expose the needed business methods to the clients. And the Java class will get the request input parameters and will call the corresponding BPEL process via SOAP. This scenario would be fine, but... this approach would imply a supplementary marshalling/unmarshalling process at the domain web service level. The data returned by the BPEL processes could be very large and in such a situation the Java based domain web service will introduce an important performance drawback.
    Is there any other solution to this case that will allow the using of a "proxy" domain web services that will not introduce any important drawback via marshalling/unmarshalling?
    Many thanks in advance!
    Regards,
    Marinel

    Hello,
    First, thank you Sandor for your answer.
    I understand that it is possible to create a BPEL process that exposes multiple operations/messages. This would be exactly what I need: a single process (web service) that will expose many operations. Could anyone, please, point me to such an example?
    So far I thought that there is possible to have only one operation exposed with a BPEL process, what is delimited between the receive/reply blocks (in the synchronous case).
    Regards,
    Marinel

  • Log4j.jar issue under Web Service Security Module

    I am running into an issue with log4j.jar for WebLogic OES PDP. there is a custom appender class that extends org.apache.log4j.AppenderSkeleton, if we packed into one jar file under \bea\ales32-ssm\webservice-ssm\lib\log4j.jar everthing is fine. if we split this class with another jar file(sth like patch.jar) and add a entry in the config file WLESws.wrapper.conf under bea\ales32-ssm\webservice-ssm\instance\WSSM\config and it failed with this error,
    but an error is
    generated when starting the WSSM(Web Service Security Module):
    log4j:ERROR A "com.foo.AuditJMSQueueAppender" object is not assignable to a "org.apache.log4j.Appender" variable.
    log4j:ERROR The class "org.apache.log4j.Appender" was loaded by
    log4j:ERROR [com.bea.security.providers.utils.InverseURLClassLoader@5f7d3f] whereas object of type
    log4j:ERROR "com.foo.AuditJMSQueueAppender" was loaded by [sun.misc.Launcher$AppClassLoader@a18aa2].
    log4j:ERROR Could not instantiate appender named "JMS_AUDIT".
    130
    ARME is started now
    Rendering object type: AuditAtzEvent
    I have tried add java option:log4j.ignoreTCL=true. in this WLESws.wrapper.conf file, but does not work.
    How to resolve this issue, Thanks for your help!

    hi
    Can anyone help with this...

  • Issue with Web Service Security

    Dear Forum Members and Readers,
    I am a beginner to Web Services, and facing an issue with WS-Security.
    My issue seemingly is quite specific to my projects though, It will be great if you can provide me your views.
    Context Description:
    I am developing a Java Web Service application that is deployed on JBoss Application Server.
    This application will communicate with two other applications those are not deployed in same JBoss Application Server.
    These 2 applications are third party applications, one is C++ based web services and other is Java based web services.
    My application gives a call to Third Party Application1 and receives the response back form it. It then passes this received response to Third Party Application 2.
    Issue Description:
    I now need to enable https paradigm among these 3 applications. (I need to implement web service security model here)
    I started with looking in to JBoss specific WS-Security but found it not suitable in my case, as it requires to configure both the client and server. I have the control over my application but not on other 2 third party applications.
    To this extent, I am unable to identify a solution that can address my issue.
    Can anybody please provide me with initial thoughts or any reference material that might help me to give this a start.
    Any clue will be highly appreciated!
    Thanks in advance
    Mukul

    mukul.object wrote:
    Actually, my SOAP messages contains some critical information that needs to be encrypted.You think that its critical information however your third party doesn't. If they would have had same thought they would have enabled the security. As I said earlier, you will have to discuss this with them.
    Another solution (however I don't know the viability in your case) could be to deploy one component before each third party service. Your web service will call this new component (Which is installed in their environment i.e. local to third party web service) and new component will forward the request to third party service. Now you can apply security/encryption/decryption between your web service and your component.
    I have had a look in to XMLEncrytion using that I can encrypt my SOAP messages but I wonder how would other tools decrypt that.My above comments answers this.
    Is there anyway I can encrypt my SOAP messages (without having to customize third party tools) in this scenario ??My above comments answers this.

  • Web Service Security not configured on this component.

    Hi Experts,
                           Before configuring the scenario, i went to RWB to check whether the comopnents are in active mode or not.
                                  Integration Engine XID 
                                  Business Process Engine XID 
                                  Mapping Runtime XID 
                                  Adapter Engine XID 
                                  Integration Engines
                          All components are in Green mode  Except Integration Engine, The Integration is in yellow mode
                           and shows the following details.
                         Details for 'Is Web service security available?'
                           Web Service Security not configured on this component.
    Can you give the solution for this.

    Hi,
                      1, While sending idoc from sapR/3 to PI , in r/3 sm58 shows the foll error:
    "No service for system SAPQA,client 200 in integration directory"*
                               Even the Bussiness sytem pointing R/3.
    From your initial post, it appears that you are using XID system and from above error, I believe you are trying to send the IDoc from QA system. R3 dev will communicate to PI dev, so verify the partner profile and ports in your IDoc Header settings.
                         2, When i execute the tcode sm58 in PI   it shows the following error:
                                   "Syntax error in program SAPLSXI_AC_CACHE _REFERESH"
    I am kinda confused how come sm58 tcode can show an error for this program, as sm58 is for checking the transactional RFCs and  SAPLSXI_AC_CACHE_REFERESH is for XI Cache refresh for Alert Category. Might be some one else can explain this.
                         3, WHEN I EXECUTE THE tcode SXI_CACHE
                                             Under the *STATUS OF RUNTIME CACHE
                                                           Unable to refresh cache contents
                                                           Error during last attempt toreferesh cache
                                                             (red colour triangle leading above both)
    Check this SAP Note 764176, might help in your situation.
    Worth reading - http://help.sap.com/saphelp_nw04/helpdata/en/0d/28e1c20a9d374cbb71875c5f89093b/frameset.htm
                        4, Still there is no messages in Message monitoring.
    Obviously because of error # 1, you are unable to send IDocs, how come you expect messages to reach PI ... strange, isn't it
    Hope this helps.
    Regards,
    Neetesh

  • Errors when processing web service call

    Hello Experts,
    Based on a requirement, I got a URL based on WSDL, using which I created a Consumer Proxy in SAP.
    I created a Logical Port in SOA Manager with type selected as 'WSDL'.
    When I'm trying to execute the proxy class to call the webservice using the logical port through SE80  it is throwing an error log as stated below.
    1) SOAP:14 Unexpected element -el=definitions ns=http://schemas.xmlsoap.org/wsdl/
    2)Error when processing Web service call
    3)Error when calling SOAP Runtime functions: Unexpected element -el=definitions ns=http://schemas.xmlsoap.org/wsdl/
    Kindly help me out.
    Thanks,
    Vamshi

    Hi,
    Check Anton's reply in this thread: External WS Consumption Issue
    Also refer the below doc which may help you: Consume an External Web Service in a Nutshell with Good Old ABAP
    Calling WebServices from ABAP via HTTPS
    Regards,
    Kiran

  • Delayed response while calling the process web service

    I have four managed servers in a cluster and the ip addresses are
    managed_server_1 -20.20.40.21
    managed_server_2 -20.20.40.22
    managed_server_3 -140.20.40.23
    managed_server_4 -140.20.40.24
    The admin server is on 20.20.40.21
    I start the managed server from command prompt using the commant
    ./startManagedWeblogic {name of the managed server} {admin console url} ie
    i start managed_server_1 from 20.20.40.21 unix box by going to {weblogic installation}\bin
    and running the following command (we have some issues with the node manager so have been using this
    method)
    ./startManagedWeblogic managed_server_1 http://20.20.40.21:17003
    similarly i start the other servers from their respestive unix boxes
    managed_server_2 from the 20.20.40.22 unix box using the command ./startManagedWeblogic managed_server_2 http://20.20.40.21:17003
    managed_server_3 from the 140.20.40.23 unix box using the command ./startManagedWeblogic managed_server_3 http://20.20.40.21:17003
    managed_server_4 from the 140.20.40.24 unix box using the command ./startManagedWeblogic managed_server_4 http://20.20.40.21:17003
    all these servers are in the cluster named BPM_cluster and the bpmengine is deployed onto this cluster
    when i deploy the application to the bpmengine it gets properly deployed onto the servers
    and i could see the process web services getting generated
    but when i try to call these webservices for each managed server seperately
    the response from managed_server_1 and managed_server_2 takes leass tha 2 secs
    but the response from managed_server_3 and managed_server_4 takes about 25 secs
    I am not able to figure out why us taking so long from the managed servers 3 and 4
    the bpmengine ds and directory ds have the cluster as targets (I also tried to point to all the servers in the cluster even that
    didnot work). I feel that there is db connectivity issue from the servers but i am not sure how to check that.
    Can anyone help me with this ?
    Thanks

    Please make sure that your solman box meet the software prerequisit as per this note below
    1483508 : Solution Manager 7.1: Root Cause Analysis pre-requisites
    This will solve that ptoblem .
    Best Regards
    Jai Wardhan

  • Process Web Service - XML Schema

    Hi
    I'm new to ALBPM and currently trying to learn about exposing a Process as a WebService. Specifically is it possible to use a XML Schema defined in the Catalog as an argument to the process Web Service? I've tried this and found the generated WSDL didn't include the Schema in the operation. This was using the Process Web Service menu item.
    The Fast Trak codes sample passes in XML as a String and parses it back into an XMLObject in Pbl. Is this the best practice way to do it?
    // Convert XML String to XML Object
    load orderXML
    using xmlText = orderRequest
    Is there a sample project on dev2dev that shows an alternative approach using a Schema?
    thanks
    Ben

    I'm new to web services, but we are currently
    implementing a number of Web Services that all take
    as arguments a single parameter which is an XMLBean,
    which has been generated by a XML Schema.
    What I find surprising is that when I submit a SOAP
    message to the Web Service (through the http Web
    Service Tester inside eclipse), I can send any valid
    XML without getting a SOAP fault. Is there a way on
    the Web Service that I want the XML submitted to be
    validated against the XML Schema for that parameter?
    Bit surprised I have to implement my own input
    argument validation, and there doesn't appear to be a
    standard way to do this. I must be missing soemthing
    surely? Why else would the Schema be in the WSDL?
    Cheers
    JohnHas anyone found an answer to this, we have the same issue?

  • Calling Process Web Service from another BPM project

    Hi all,
    Scenario: I need to launch an instance of a process in another project, running on another engine.
    I figured a Process Web Service was the way to go and I am trying to invoke my Process Web Service method that creates a process. I have tried with and without passing the username token (checkbox in the Process Web Service) to no avail.
    Does anyone have some sample code to do this ?
    cheers
    Tony
    10gr3

    Hi Matias,
    Yeah, thanks. I am testing on Studio and Enterprise (Standalone). I kinda assumed that if username token is required that the wrappers to consume the PWS would take care of that but I guess not ?
    I am having problems with "None" now, on enterprise (see below). I think it is one of those when you get so into the problem you dig a big hole and cant see any way out !
    Gonna switch to using Papi to launch the instances I think :-(
    cheers
    Tony
    HTTP/1.0 500 INTERNAL SERVER ERROR
    Connection: close
    Content-Type: text/xml;charset=utf-8
    Content-length: 1915
    <?xml version="1.0" encoding="UTF-8"?><soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    <soapenv:Body>
    <soapenv:Fault>
    <faultcode>soapenv:MustUnderstand</faultcode>
    <faultstring>Did not understand &quot;MustUnderstand&quot; header(s):</faultstring>
    <detail>
    <ns1:stackTrace xmlns:ns1="http://xml.apache.org/axis/">
         at org.apache.axis.handlers.soap.MustUnderstandChecker.invoke(MustUnderstandChecker.java:96)
         at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
         at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
         at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
         at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:453)
         at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
         at fuego.soaptype.AxisSoapService.invoke(AxisSoapService.java:359)
         at fuego.soaptype.AxisSoapService.invoke(AxisSoapService.java:123)
         at fuego.webservices.HttpSoapListener.process(HttpSoapListener.java:206)
         at fuego.http.HttpExecution$1.run(HttpExecution.java:71)
         at fuego.component.Message.process(Message.java:576)
         at fuego.component.ExecutionThread.processMessage(ExecutionThread.java:780)
         at fuego.component.ExecutionThread.processBatch(ExecutionThread.java:755)
         at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:142)
         at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:134)
         at fuego.http.HttpExecution$HttpPrincipal.processBatch(HttpExecution.java:190)
         at fuego.component.ExecutionThread.work(ExecutionThread.java:839)
         at fuego.component.ExecutionThread.run(ExecutionThread.java:408)
    </ns1:stackTrace>
    <ns2:hostname xmlns:ns2="http://xml.apache.org/axis/">myhostname</ns2:hostname>
    </detail>
    </soapenv:Fault>
    </soapenv:Body>
    </soapenv:Envelope>
    after submitting:
    Host: myhostname:9001
    Cache-Control: no-cache
    Pragma: no-cache
    SOAPAction: "http://bea.com/albpm/GSR_INCR/INCRGNSAutomatic#startSession"
    Content-Length: 847
    <?xml version="1.0" encoding="UTF-8"?>
    <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    <soapenv:Header>
    <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
    <wsse:UsernameToken><wsse:Username>anonymous</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">anonymous</wsse:Password></wsse:UsernameToken></wsse:Security></soapenv:Header>
    <soapenv:Body>
    <startSession xmlns="http://bea.com/albpm/GSR_INCR/INCRGNSAutomatic">
    <password xmlns="">password</password>
    <user xmlns="">user</user>
    </startSession>
    </soapenv:Body>
    </soapenv:Envelope>

  • Oracle Service Bus 11gR1 - missing Web Services Security Configuration?

    I am trying to configure a web service which uses username token policy.
    The below option is missing in Proxy Service --> Security
    Web Services Security Configuration
    Process WS-Security Header     Yes     NoIs there anything that needs to be enabled for the above to show up in Proxy Service-->Security.

    This option was enabled by removing the username token policy from the wsdl file.
    Thanks for looking.

  • [OSB Kernel:398133]The service is based on WSDL with Web Services Security

    Team,
    I need to use the wsdl given by external client. When I create a osb business service, I am receiving the below error.
    OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button.     ...
    WSDL:
    http://personator.melissadata.net/v3/SOAP/ContactVerify
    We don't have OWSM set up. Is there any workaround that I can use to connect to this service for OSB?

    As a workaround, you can try to remove the Policy definition and reference from the copy you will import in OSB.
    I would recommend to add OWSM to your domain. It's a straight forward process.
    Regards,
    Fabio.

Maybe you are looking for